According to password cracking experts, “It is unlikely any other document has been as influential [as past NIST guidelines] in shaping password creation and use policies.”

For over a year, the NIST has been drafting new rules and recommendations for protecting digital identities. This June, the result was finally published.

Substantial changes have been introduced since the NIST’s last publication in August 2013, many concerned with passwords. The NIST advises agencies to jettison outdated password complexity rules in favor of user-friendliness. It also introduces new password encryption standards and requires multi-factor authentication for any service involving sensitive information.

Read on!

Written by

Auth0

Identity Is Complex, Deal With It. Auth0 is The Identity Platform for Application Builders.

Welcome to a place where words matter. On Medium, smart voices and original ideas take center stage - with no ads in sight. Watch
Follow all the topics you care about, and we’ll deliver the best stories for you to your homepage and inbox. Explore
Get unlimited access to the best stories on Medium — and support writers while you’re at it. Just $5/month. Upgrade